-
-
Notifications
You must be signed in to change notification settings - Fork 217
Delegated Management
Note
Currently only AES-CMAC receipts are supported.
To enable receipt verification when using delegated management authorized operations, specify the receipt key with --receipt-key. If the receipt verification fails, gp will exit with a non-null exit code. To ignore receipt verification (while still providing the receipt key as an argument), use the --force.
A security domain with the ReceiptGeneration privilege is responsible for generating the receipts for executed operations. By default it is the Issuer Security Domain (ISD). To create a different domain, use:
$ gp -domain 112233445566 -privs ReceiptGenerationTo enable ReceiptGeneration, key with version number 0x71 must be loaded into the security domain with ReceiptGeneration privilege.
$ gp -connect 112233445566 -put-key aes:404142434445464748494a4b4c4d4e4f -new-keyver 0x71javacard.pro - custom JavaCard applet development services · Editing locked due to malicious SPAM, sorry :(
Basic usage
- Getting Started
- Support GlobalPlatformPro development
- Glossary
- Environment variables
- Keys
- Secure Channel Establishment
- Application management
- Frequently Asked Questions
- Support & Questions
Advanced topics
- Lifecycle management
- Supplementary security domains
- DAP Verification
- Delegated management & receipts
- PACE
Development
JavaCard ecosystem